CISO M4: Security Operations

How do you combine your information security and IT operations practices to improve collaboration and reduce risks?

In this training, you will learn how to set up and improve your organization’s security operations practically in your role as CISO. You will learn how to identify and manage your most important assets (including data).

One of the key components of a modern security architecture is Identity and Access Management (IAM). Indeed, controlling users and their access to the right resources is a challenging activity. Learn all about modern cloud and non-cloud authentication techniques (including Oauth, OpenID,…), Identity Governance and Administration platforms, PKI, and privileged identity and access management. In this context, we will also explore the management of encryption and key management.

Besides users, physical assets must also be managed. How do you make sure only authorized hardware and applications are used? Laptops, tablets, and smartphones are owned and managed by your organization. And what about BYOD, BYOK, and CYOD?…? During this module, you will learn how a CISO can manage assets such as devices and applications. How do you ensure assets are secure and still supported by the vendor? Do you have a good idea of which cloud-based applications are used by the employees? We will teach you the related practical ins and outs.

A critical element of security operations is managing your company network, which is no longer the border of your infrastructure. Our trainers will teach you how to secure access to wired, wireless, and cloud networks. We will also cover physical security components, such as badge readers, camera systems, burglary alarms, etc.

Running secure operations can be expensive. Certain aspects of these types of operations may be a candidate for outsourcing to lower cost, avoid attracting a specialized workforce, or simplify the work. What are the most common security operations to outsource, and which aspects deserve your attention? What kind of KPIs and SLAs should be put in place?

If your task is running and improving organization security operations as a CISO, then this training is for you!

Why take this course?

• Get control over your most important assets
• Better manage your organization’s identities and access
• Understand how to protect your organization’s devices
• Apply best practices to physical security
• Outsource your security operations without losing control

This course is also the fourth module in a unique program intended to lead to formal CISO certification. To check out the other modules, download this file: CISO BROCHURE DOWNLOAD. 

Target group

What is the Certified CISO program’s ‘Security Operations” module intended for? This module targets information and cybersecurity officers, managers, and other security professionals tasked with running and improving your security operations. Those working in risk management and/or conducting security-related audits could also benefit from this course.

Learning goals

You will learn about your role as a CISO in:

• Creating and maintaining an asset inventory
• Governing your assets with classification and ownership
• Managing your organization’s identities and access
• Managing your organization’s devices
• Securing your networks (wired, wireless, and cloud)
• Manage your organization’s application security
• Understanding physical security and its components
• Applying best practices to physical security
• Outsourcing security operations without losing control

The educational approach of this course

When it comes to establishing and running proper Security Operations, there are a variety of approaches. A one-size-fits-all formula doesn’t apply.

And it’s for that reason that this course has a two-fold objective. It aims to introduce you to the current best practices available and to supply you with the practical skills required to apply them correctly within your organization.

To accomplish this, we’ve lined up highly skilled professionals who have been in the trenches for years. They share practical advice and workarounds and teach you the core of what you need to know. The course itself blends theoretical models, frameworks, and standards to give you an overview of what’s out there, combined with practical exercises for applying what you’ve learned in real-life situations.